Language Selection

English French German Italian Portuguese Spanish

Police Still Using Matrix-Type Database

Filed under
Misc

When the federal government in April stopped funding a database that lets police quickly see public records and commercially collected information on Americans, privacy advocates celebrated what they saw as a victory against overzealousness in the fight against terrorism.

But a few states are pressing forward with a similar system, continuing to look for ways to quickly search through a trove of data - from driver's license photos to phone numbers to information about people's cars. Their argument in seeking to keep the Matrix database alive in some form: it's too important for solving crimes to give up on.

Florida, Ohio, Connecticut and Pennsylvania still use software that lets investigators quickly cull through much of the data about people that reside in cyberspace. However, without the federal grant for the Matrix data-sharing system, they won't be routinely searching through digital files from other states - at least for now.

Privacy advocates still don't like the idea, saying government shouldn't have easy access to so much information about people who haven't done anything wrong.

But law officers bent on keeping the Matrix alive say the information is already out there anyway for companies to use for less noble purposes. Law enforcement has always used such information; it just never had a big computer search tool to quickly find links between people and places.

"The media uses that data, attorneys use it, banks use it," said Mark Zadra, the Florida Department of Law Enforcement agent in charge of the system. "We've been using online data like that for 10 to 15 years. What this does is link those. ... What took law enforcement so long to use technology and get into the 21st century?"

Matrix - the ominous name is shorthand for Multistate Anti-Terrorism Information Exchange - was born as an anti-terrorism tool in the wake of the Sept. 11 terrorist attacks.

Created by Florida law enforcement officials working with a one-time drug-running pilot-turned-millionaire computer whiz named Hank Asher, it was conceived as a way for states to combine data they have on people - driving records and criminal histories, for example - with similar records from other states.

The company that Asher founded but no longer works for, Seisint Inc., also added to Matrix information gathered in the private sector, including some of what credit card companies collect, such as names, addresses and Social Security numbers - though actual credit histories were not included.

Together, the program would give states a powerful tool that could link someone to several addresses or vehicles, and possibly to other people who lived at those same houses or drove the same car.

Those links could help thwart terrorism or solve crimes in which witnesses could provide only partial information, like half of a license plate and the make of a car. The technology is credited in part with helping police crack the Washington, D.C., sniper case in 2002.

"It very quickly allows you to identify identities, associates, things like that," said Lt. Col. Ralph Periandi, deputy commissioner of the Pennsylvania State Police. "Two or three other people who might be connected."

Matrix impressed federal officials enough that the program was seeded with $12 million from the Departments of Justice and Homeland Security. Thirteen states eventually signed on or expressed interest in feeding their data into the system, representing half the U.S. population.

But over time, several states pulled out, partly because of concerns about the cost or laws governing the transfer of data out of state. California's attorney general decided Matrix "offends fundamental rights of privacy."

Those objections were nothing compared to the criticism Matrix encountered from the right and the left, including from the American Civil Liberties Union.

"It is essentially an electronic file on everyone whether they are suspected of criminal activity or not," said Howard Simon, executive director of the ACLU in Florida. "I can't think of anything more un-American."

When the federal grant for Matrix ended in April - there is dispute over whether the privacy issues may have killed the government's interest - the database itself officially ended as well. But Florida and the three other states are still using its database-searching software. Florida is continuing to seek out companies that can help them build another, larger cache of information. And officials envision one day sharing that data with other states again.

In addition to contracting for searching software from Seisint - now part of information giant LexisNexis - Florida has requested information from companies on what data they could provide that the police could add to their database. The proposal says Florida police are interested in such privately available data as insurance, financial, property and business records.

Although Matrix was designed as a terrorism tool, Zadra said its main value has been for solving more ordinary crimes. He cites success stories ranging from kidnapping to frauds and theft. In fact, in Florida the system is most often queried in fraud investigations, followed closely by robbery, state records show.

To support those efforts, the Florida police envision getting what's known as "credit header information" - basic identifiers for people - from private credit rating agencies. That's led to fears that police would looking into people's credit.

"Absolutely not true," Zadra said. What the agency wants from credit agencies is the up-to-date addresses that creditors are famously aggressive about getting.

"We don't get their account numbers, we don't get their expenditures, we don't track and monitor anybody," Zadra said. "We don't know what library books you're checking out, what X-rated videos people are renting."

The agency also wants to limit the searches to information generally available either to the public or to law enforcement without a search warrant, Zadra said. For example, one of the databases the system searches is the FDLE's own registry of sex offenders - which has become a popular Web site for members of the general public to search for people in their neighborhood.

For many privacy advocates Matrix raises the larger question of why so much of this information is already out there in databases for law enforcement to covet.

"Technology operates at the speed of light and privacy protection is at a snail's pace," the ACLU's Simon said. "Governments like the state of Florida have not enacted privacy legislation and aren't limiting the circulation of information about you without your knowledge and consent."

Zadra said the FDLE is keenly aware of concerns about how the data are used - but noted that ultimately the files are mostly public data that people have freely given out. He points to the long lines of people at sporting events who will give away information on themselves by filling out a credit application just for a free T-shirt.

"They've given their private and personal information to somebody they have no idea about, but when they hear law enforcement wants to use it to solve a crime ... they can't believe it," Zadra said.

"We're doing exactly what the public asked us to do after Sept. 11. They said, `My goodness, how did the law enforcement community allow this to happen?'"

By DAVID ROYSE
Associated Press

More in Tux Machines

Mozilla: Virtual Reality in Mixed Reality, Taskcluster Development

  • Building Bold New Worlds With Virtual Reality
    From rich text to video to podcasts, the Internet era offers an array of new ways for creators to build worlds. Here at Mozilla, we are particularly excited about virtual reality. Imagine moving beyond watching or listening to a story; imagine also feeling that story. Imagine being inside it with your entire mind and body. Now imagine sharing and entering that experience with something as simple as a web URL. That’s the potential before us.
  • This Week in Mixed Reality: Issue 3
    This week we’re heads down focusing on adding features in the three broad areas of Browsers, Social and the Content Ecosystem.
  • New to me: the Taskcluster team
    At this time last year, I had just moved on from Release Engineering to start managing the Sheriffs and the Developer Workflow teams. Shortly after the release of Firefox Quantum, I also inherited the Taskcluster team. The next few months were *ridiculously* busy as I tried to juggle the management responsibilities of three largely disparate groups.
  • Taskcluster migration update: we're finished!
    Over the past few weeks we've hit a few major milestones in our project to migrate all of Firefox's CI and release automation to taskcluster. Firefox 60 and higher are now 100% on taskcluster!

OSS Leftovers

  • After the First US Transaction, Propy Announces an Open Source Developer Program
    California-based blockchain startup Propy, is bringing the commercial use of blockchain technology to the US. After facilitating the first US Blockchain-based real estate deed in Vermont, Propy announced a new open source Developer Program. The idea behind Propy: it allows anyone to buy or sell real estate, anywhere, online. Propy provides an efficient crypto and fiat payment and an immutable record on the blockchain, ensuring that title deeds and property rights will be there forever.
  • Titus, the Netflix container management platform, is now open source
    Titus powers critical aspects of the Netflix business, from video streaming, recommendations and machine learning, big data, content encoding, studio technology, internal engineering tools, and other Netflix workloads. Titus offers a convenient model for managing compute resources, allows developers to maintain just their application artifacts, and provides a consistent developer experience from a developer’s laptop to production by leveraging Netflix container-focused engineering tools.
  • Netflix's Container Management System Is Now Open Source
    On Thursday Netflix announced it's made its home grown container management system, Titus, open source.
  • Lumina Networks on delivering open source SDN
    What kinds of companies should consider open source SDN, and what are the associated challenges in using such open source deployments? Lumina Networks has unrivalled expertise in working with customers and partners to deliver implementations, and explains its processes and outlines the benefits of using open source SDN.
  • Luxoft launches PELUX 1.0 open source platform for automotive
    Luxoft’s automotive division has launched PELUX 1.0, an open source platform available to developers. This has been developed from its PELUX software suite as used by carmakers and tier 1 suppliers to build converged infotainment, autonomous driving, communication, HMI and car body control systems.
  • Dev Preview: MongoDB Enterprise Running on OpenShift
    In order to compete and get products to market rapidly, enterprises today leverage cloud-ready and cloud-enabled technologies. Platforms as a Service (or PaaS) provide out-of-the-box capabilities which enable application developers to focus on their business logic and users instead of infrastructure and interoperability. This key ability separates successful projects from those which drown themselves in tangential work which never stops. In this blog post, we’ll cover MongoDB’s general PaaS and cloud enablement strategy as well as touch upon some new features of Red Hat’s OpenShift which enable you to run production-ready MongoDB clusters. We’re also excited to announce the developer preview of MongoDB Enterprise Server running on OpenShift. This preview allows you to test out how your applications will interact with MongoDB running on OpenShift.
  • Is Open Source The AI Nirvana for Intel? [Ed: openwashing a malicious company using buzzwords and urban myths]
  • Writing Chuck – Joke As A Service
    Recently I really got interested to learn Go, and to be honest I found it to be a beautiful language. I personally feel that it has that performance boost factor from a static language background and easy prototype and get things done philosophy from dynamic language background. The real inspiration to learn Go was these amazing number of tools written and the ease with which these tools perform although they seem to be quite heavy. One of the good examples is Docker. So I thought I would write some utility for fun, I have been using fortune, this is a Linux utility which gives random quotes from a database. I thought let me write something similar but let me do something with jokes, keeping this mind I was actually searching for what can I do and I landed up on jokes about Chuck Norris or as we say it facts about him. I landed up on chucknorris.io they have an API which can return different jokes about Chuck, and there it was my opportunity to put something up and I chose Go for it.

today's howtos

Security: Updates, IBM, Elytron and Container Vulnerability Scanning

  • Security updates for Friday
  • IBM Security launches open-source AI
    IBM Security unveiled an open-source toolkit at RSA 2018 that will allow the cyber community to test their AI-based security defenses against a strong and complex opponent in order to help build resilience and dependability into their systems.
  • Elytron: A New Security Framework in WildFly/JBoss EAP
    Elytron is a new security framework that ships with WildFly version 10 and Red Hat JBoss Enterprise Application Platform (EAP) 7.1. This project is a complete replacement of PicketBox and JAAS. Elytron is a single security framework that will be usable for securing management access to the server and for securing applications deployed in WildFly. You can still use the legacy security framework, which is PicketBox, but it is a deprecated module; hence, there is no guarantee that PicketBox will be included in future releases of WildFly. In this article, we will explore the components of Elytron and how to configure them in Wildfly.
  • PodCTL #32 – Container Vulnerability Scanning